mailing list archives
From: Jeffrey Walton <noloader () gmail com>
Date: Sun, 2 Jun 2013 18:35:48 -0400
Below is CVE-2013-1196. Does anyone know anything about the unknown vectors?
Was this a confused deputy that executed commands it received as root?
The command-line interface in Cisco Secure Access Control System
(ACS), Identity Services Engine Software, Context Directory Agent,
Application Networking Manager (ANM), Prime Network Control System,
Prime LAN Management Solution (LMS), Prime Collaboration, Unified
Provisioning Manager, Network Services Manager, Prime Data Center
Network Manager (DCNM), and Quad does not properly validate input,
which allows local users to obtain root privileges via unspecified
vectors, aka Bug IDs CSCug29384, CSCug13866, CSCug29400, CSCug29406,
CSCug29411, CSCug29413, CSCug29416, CSCug29418, CSCug29422,
CSCug29425, and CSCug29426, a different issue than CVE-2013-1125.
Fun and Misc security discussion for OT posts.
Note: funsec is a public and open mailing list.
- CVE-2013-1196 details? Jeffrey Walton (Jun 02)